X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - SECURITYAFFAIRS.CO - A La Une - 05/01/2025 19:06

Nuclei flaw allows signature bypass and code execution

A vulnerability in Nuclei, an open-source vulnerability scanner, could allow attackers to bypass signature checks and execute malicious code. A high-severity security flaw, tracked as CVE-2024-43405 (CVSS score of 7.4), in the open-source vulnerability scanner ProjectDiscovery’s Nuclei, could allow attackers to bypass signature checks and execute malicious code. The Wiz’s engineering team discovered the vulnerability. The vulnerability […]

Articles similaires

Sorry! Image not available at this time

Critical Zero-Click Command Injection in AVideo Platform Allows Stream Hijacking

itsecuritynews.info - 08/Mar 03:34

A critical vulnerability in AVideo, a widely used open-source video hosting and streaming platform. Tracked as CVE-2026-29058, this zero-click flaw...

Sorry! Image not available at this time

Critical Zero-Click Command Injection in AVideo Platform Allows Stream Hijacking

itsecuritynews.info - 08/Mar 03:34

A critical vulnerability in AVideo, a widely used open-source video hosting and streaming platform. Tracked as CVE-2026-29058, this zero-click flaw...

Sorry! Image not available at this time

Critical ExifTool Vulnerability Allows Malicious Images to Execute Code on macOS

itsecuritynews.info - 09/Mar 06:07

Many users believe macOS is inherently resistant to malware, but a newly discovered vulnerability proves otherwise. Kaspersky’s Global Research and...

Sorry! Image not available at this time

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23

itsecuritynews.info - 18/Mar 06:09

Cybersecurity researchers have disclosed a critical security flaw impacting the GNU InetUtils telnet daemon (telnetd) that could be exploited by an...

Sorry! Image not available at this time

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23

itsecuritynews.info - 18/Mar 06:09

Cybersecurity researchers have disclosed a critical security flaw impacting the GNU InetUtils telnet daemon (telnetd) that could be exploited by an...

Sorry! Image not available at this time

FortiClient Hit by Severe SQL Injection Vulnerability Enabling Database Intrusion

itsecuritynews.info - 18/Mar 06:09

Cybersecurity researchers have a detailed a critical security flaw in Fortinet’s FortiClient Enterprise Management Server (EMS). Tracked as...

Sorry! Image not available at this time

FortiClient Hit by Severe SQL Injection Vulnerability Enabling Database Intrusion

itsecuritynews.info - 18/Mar 06:09

Cybersecurity researchers have a detailed a critical security flaw in Fortinet’s FortiClient Enterprise Management Server (EMS). Tracked as...

Sorry! Image not available at this time

Critical SQL Injection bug in Ally plugin threatens 400,000+ WordPress sites

securityaffairs.co - 12/Mar 13:25

An unauthenticated SQL injection flaw (CVE-2026-2413) in the Ally WordPress plugin, used on 400K+ sites, could allow attackers to steal sensitive...

Sorry! Image not available at this time

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

itsecuritynews.info - 11:36

Oracle has released security updates to address a critical security flaw impacting Identity Manager and Web Services Manager that could be exploited...

Sorry! Image not available at this time

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

itsecuritynews.info - 11:36

Oracle has released security updates to address a critical security flaw impacting Identity Manager and Web Services Manager that could be exploited...

Les derniers communiqués